The law of data (privacy) protection: a comparative and theoretical study

Roos, Anneliese

31 October 2003

In present-day society more and more personal information is being collected. The nature of the collection has also changed: more sensitive and potentially prejudicial information is collected. The advent of computers and the development of new telecommunications technology, linking computers in networks (principally the Internet) and enabling the transfer of information between computer systems, have made information increasingly important, and boosted the collection and use of personal information. The risks inherent in the processing of personal information are that the data may be inaccurate, incomplete or irrelevant, accessed or disclosed without authorisation, used for a purpose other than that for which they were collected, or destroyed. The processing of personal information poses a threat to a person's right to privacy. The right to identity is also infringed when incorrect or misleading information relating to a person is processed. In response to the problem of the invasion of the right to privacy by the processing of personal information, many countries have adopted "data protection" laws. Since the common law in South Africa does not provide adequate protection for personal data, data protection legislation is also required. This study is undertaken from a private law perspective. However, since privacy is also protected as a fundamental right, the influence of constitutional law on data protection is also considered. After analysing different foreign data protection laws and legal instruments, a set of core data protection principles is identified. In addition, certain general legal principles that should form the basis of any statutory data protection legislation in South Africa are proposed. Following an analysis of the theoretical basis for data protection in South African private law, the current position as regards data protection in South-Africa is analysed and measured against the principles identified. The conclusion arrived at is that the current South African acts can all be considered to be steps in the right direction, but not complete solutions. Further legislation incorporating internationally accepted data protection principles is therefore necessary. The elements that should be incorporated in a data protection regime are discussed. / Jurisprudence / LL. D. (Jurisprudence)

South African private law

OECD Guidelines on data protection

Right to identity

Computers and privacy

Right to privacy

Data protection

342.858068

Privacy, Right of -- South Africa

Internet -- Security measures

Data protection and transborder data flows : implications for Nigeria's integration into the global network economy

Allotey, Asuquo Kofi Essien

02 1900

One of the realities that developing countries like Nigeria have to face today is that national and international markets have become more and more interconnected through the global platform of telecommunications and the Internet. This global networked economy is creating a paradigm shift in the focus of development goals and strategies particularly for developing countries. Globalisation is driving the nations of the world more into political and economic integration. These integrations are enhanced by a globally interconnected network of economic and communication systems at the apex of which is the Internet. This network of networks thrives on and encourages the expansion of cross-border flows of ideas and information, goods and services, technology and capital. Being an active member of the global network economy is essential to Nigeria’s economic development. It must plug into the network or risk being shut out. The global market network operates by means of rules and standards that are largely set by the dominant players in the network. Data protection is a critical component of the regime of rules and standards that govern the global network economy; it is evolving into an international legal order that transcends geographical boundaries. The EU Directive on data protection is the de facto global standard for data protection; it threatens to exclude non-EU countries without an adequate level of privacy protection from the EU market. More than 50 countries have enacted data protection laws modelled on the EU standard. Access to the huge EU market is a major motivation for the current trend in global harmonisation of domestic data protection laws. This trend provides a compelling reason for examining the issues relating to data protection and trans-border data flows and their implications for Nigeria’s desire to integrate into the global network economy. There are two primary motivations for legislating restrictions on the flow of data across national boundaries. The first is the concern for the privacy of the citizens, and second, securing the economic well-being of a nation. It is important that Nigeria’s privacy protection keeps pace with international norms in the provision of adequate protection for information privacy order to prevent potential impediments to international trading opportunities. / Public, Constitutional, & International / LLD

Data protection

Trans-border data flows

Right to privacy in Nigeria

Freedom of information

Information economy

Globalisation

EU directive

OECD guidelines

Rules-based regulation

343.99440669

Privacy, Right of -- Nigeria

Freedom of information -- Nigeria

Globalization -- Nigeria

Knowledge economy -- Nigeria

Data protection and transborder data flows : implications for Nigeria's integration into the global network economy

Allotey, Asuquo Kofi Essien

02 1900

One of the realities that developing countries like Nigeria have to face today is that national and international markets have become more and more interconnected through the global platform of telecommunications and the Internet. This global networked economy is creating a paradigm shift in the focus of development goals and strategies particularly for developing countries. Globalisation is driving the nations of the world more into political and economic integration. These integrations are enhanced by a globally interconnected network of economic and communication systems at the apex of which is the Internet. This network of networks thrives on and encourages the expansion of cross-border flows of ideas and information, goods and services, technology and capital. Being an active member of the global network economy is essential to Nigeria’s economic development. It must plug into the network or risk being shut out. The global market network operates by means of rules and standards that are largely set by the dominant players in the network. Data protection is a critical component of the regime of rules and standards that govern the global network economy; it is evolving into an international legal order that transcends geographical boundaries. The EU Directive on data protection is the de facto global standard for data protection; it threatens to exclude non-EU countries without an adequate level of privacy protection from the EU market. More than 50 countries have enacted data protection laws modelled on the EU standard. Access to the huge EU market is a major motivation for the current trend in global harmonisation of domestic data protection laws. This trend provides a compelling reason for examining the issues relating to data protection and trans-border data flows and their implications for Nigeria’s desire to integrate into the global network economy. There are two primary motivations for legislating restrictions on the flow of data across national boundaries. The first is the concern for the privacy of the citizens, and second, securing the economic well-being of a nation. It is important that Nigeria’s privacy protection keeps pace with international norms in the provision of adequate protection for information privacy order to prevent potential impediments to international trading opportunities. / Public, Constitutional, and International / LL. D.

Data protection

Trans-border data flows

Right to privacy in Nigeria

Freedom of information

Information economy

Globalisation

EU directive

OECD guidelines

Rules-based regulation

343.99440669

Privacy, Right of -- Nigeria

Freedom of information -- Nigeria

Globalization -- Nigeria

Knowledge economy -- Nigeria

The law of data (privacy) protection: a comparative and theoretical study

Roos, Anneliese

31 October 2003

In present-day society more and more personal information is being collected. The nature of the collection has also changed: more sensitive and potentially prejudicial information is collected. The advent of computers and the development of new telecommunications technology, linking computers in networks (principally the Internet) and enabling the transfer of information between computer systems, have made information increasingly important, and boosted the collection and use of personal information. The risks inherent in the processing of personal information are that the data may be inaccurate, incomplete or irrelevant, accessed or disclosed without authorisation, used for a purpose other than that for which they were collected, or destroyed. The processing of personal information poses a threat to a person's right to privacy. The right to identity is also infringed when incorrect or misleading information relating to a person is processed. In response to the problem of the invasion of the right to privacy by the processing of personal information, many countries have adopted "data protection" laws. Since the common law in South Africa does not provide adequate protection for personal data, data protection legislation is also required. This study is undertaken from a private law perspective. However, since privacy is also protected as a fundamental right, the influence of constitutional law on data protection is also considered. After analysing different foreign data protection laws and legal instruments, a set of core data protection principles is identified. In addition, certain general legal principles that should form the basis of any statutory data protection legislation in South Africa are proposed. Following an analysis of the theoretical basis for data protection in South African private law, the current position as regards data protection in South-Africa is analysed and measured against the principles identified. The conclusion arrived at is that the current South African acts can all be considered to be steps in the right direction, but not complete solutions. Further legislation incorporating internationally accepted data protection principles is therefore necessary. The elements that should be incorporated in a data protection regime are discussed. / Jurisprudence / LL. D. (Jurisprudence)

South African private law

OECD Guidelines on data protection

Right to identity

Computers and privacy

Right to privacy

Data protection

342.858068

Privacy, Right of -- South Africa

Internet -- Security measures

Corporate social responsibility and human rights; : An examination of the Swedish National Contact Point of the OECD and other possible alternatives.

Patring, Kristina

January 2012

This thesis firstly attempts to provide a theoretical basis for how the complex cases related to corporate misbehaviour in relation to human rights respect should be handled. Secondly, it attempts to critically examine how well the Swedish National Contact Point (SNCP) functionsin relation to its goals through the usage of elite interviews. Thirdly and finally it also explores the interest of concerned stakeholders in finding other non-judicial conflictmanagement mechanisms for cases within the CSR – human rights nexus at other mediation institutions such as the Stockholm Chamber of Commerce (SCC) and/or the InternationalChamber of Commerce (ICC). The thesis argues that it is possible and advisable to apply Dworkin’s idea of hard cases to the conflictual cases appearing within CSR-human rights nexus in Sweden. It directs criticism towards the usage of opaque social pressure currently applied when hard cases within the CSR-human rights nexus are to be solved. It argues that usage of such pressure both makes it hard to follow up on decisions made and makes it questionable whether victims of human rights abuses related to corporate conduct are provided with effective access to remedy. It suggests that Dworkin’s general principles of equal respect and concern is a least common denominator for the demands placed on conflict management mechanisms within the CSRhuman rights nexus by both relevant soft law instruments and respondents in the elite interviews carried out for the thesis. As a result of the interview survey the thesis draws the conclusion that the SNCP to a major extent seems to have failed in the fulfilment of its goals and the expectations placed upon it as stipulated by the OECD 2000 guidelines. What is more the SNCP seems little equipped to meet the requirements of the 2011 version of the OECD guidelines and the UN Guiding Principles unless some sincere and large scale efforts are made by the Swedish government and other concerned parties in the SNC’s regeneration. The thesis found the interest among concerned stakeholders for alternative conflict management mechanisms at the SCC and the ICC to be generally low. Respondents generally thought that the challenges for such private institutions to procure the confidence of both sides in a conflict would be too difficult for them to overcome.

Corporate Social Responsibility

Human Rights

UN Guiding Principles

non-judicial grievance mechanisms

OECD National Contact Points

Mediation

Sweden

Stockholm Chamber of Commerce

Företagsansvar

Mänskliga rättigheter

FN:s riktlinjer för företagsansvar

icke-juridiska tvistemålslösningar

OECD:s kontaktpunkter

medling

Stockholms handelskammer

Social Sciences Interdisciplinary